41.41.104.64 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: TE Data

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Attempted connection to port 445.	2020-07-23 05:02:22

Comments on same subnet:

IP	Type	Details	Datetime
41.41.104.105	attackbots	Unauthorized connection attempt from IP address 41.41.104.105 on Port 445(SMB)	2020-04-01 19:42:06
41.41.104.69	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:41.	2020-03-18 23:04:47
41.41.104.150	attackspam	unauthorized connection attempt	2020-02-04 17:05:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.41.104.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6615
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.41.104.64.			IN	A

;; AUTHORITY SECTION:
.			311	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072201 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 23 05:02:18 CST 2020
;; MSG SIZE  rcvd: 116

Host info

64.104.41.41.in-addr.arpa domain name pointer host-41.41.104.64.tedata.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.104.41.41.in-addr.arpa	name = host-41.41.104.64.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.153.132.102	attack	Invalid user tomek from 5.153.132.102 port 46605	2020-01-26 07:18:20
84.70.97.186	attack	GET /wp-login.php HTTP/1.1	2020-01-26 07:51:49
168.61.176.121	attackbots	Unauthorized connection attempt detected from IP address 168.61.176.121 to port 2220 [J]	2020-01-26 07:40:59
203.130.192.242	attack	2020-01-25T23:27:18.112179shield sshd\[24288\]: Invalid user testuser from 203.130.192.242 port 41210 2020-01-25T23:27:18.119669shield sshd\[24288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.192.242 2020-01-25T23:27:19.461563shield sshd\[24288\]: Failed password for invalid user testuser from 203.130.192.242 port 41210 ssh2 2020-01-25T23:30:29.673424shield sshd\[25087\]: Invalid user tuser from 203.130.192.242 port 35682 2020-01-25T23:30:29.680816shield sshd\[25087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.192.242	2020-01-26 07:39:54
185.189.221.70	attackbots	Return-Path: Received: from fantasymundo.com ([117.143.116.20]) by mx-ha.web.de (mxweb010 [212.227.15.17]) with ESMTP (Nemesis) id 1MPpsV-1jIEMo3HD1-00MvfH for ; Sat, 25 Jan 2020 12:37:51 +0100 From: "Aaron Schulte" Reply-To: "Aaron Schulte" To: jasmin.kraft@web.de, d.sikorski@web.de, tom.bielemeier@web.de, preuss_e@web.de, c-erben@web.de, michael.gaser@web.de, arii.benni@web.de, claus.graf@web.de Subject: Brauchst du Geld? Kein Problem Date: Sat, 25 Jan 2020 13:30:44 +0200 Content-Transfer-Encoding: 7Bit Content-Type: text/html; Envelope-To: X-Spam-Flag: YES	2020-01-26 07:34:33
94.23.62.187	attack	Jan 25 23:02:46 pkdns2 sshd\[37149\]: Invalid user solr from 94.23.62.187Jan 25 23:02:47 pkdns2 sshd\[37149\]: Failed password for invalid user solr from 94.23.62.187 port 59492 ssh2Jan 25 23:06:26 pkdns2 sshd\[37391\]: Invalid user bayou from 94.23.62.187Jan 25 23:06:28 pkdns2 sshd\[37391\]: Failed password for invalid user bayou from 94.23.62.187 port 39950 ssh2Jan 25 23:10:08 pkdns2 sshd\[37667\]: Invalid user laptop from 94.23.62.187Jan 25 23:10:09 pkdns2 sshd\[37667\]: Failed password for invalid user laptop from 94.23.62.187 port 48664 ssh2 ...	2020-01-26 07:56:15
83.97.20.46	attack	Jan 26 00:09:52 debian-2gb-nbg1-2 kernel: \[2253064.838248\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=83.97.20.46 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=48483 DPT=5222 WINDOW=65535 RES=0x00 SYN URGP=0	2020-01-26 07:26:44
41.59.211.100	attackspambots	IP blocked	2020-01-26 07:53:34
118.89.247.74	attack	Jan 20 06:16:15 pi sshd[3479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.247.74 Jan 20 06:16:17 pi sshd[3479]: Failed password for invalid user silvano from 118.89.247.74 port 42260 ssh2	2020-01-26 07:17:55
191.176.234.152	attack	Invalid user dev from 191.176.234.152 port 24654	2020-01-26 07:28:16
49.235.243.246	attackbotsspam	Invalid user xu from 49.235.243.246 port 43570	2020-01-26 07:36:13
150.136.210.215	attackbots	Invalid user wk from 150.136.210.215 port 43260	2020-01-26 07:35:39
138.68.171.25	attackspam	Jan 26 00:21:08 vmd17057 sshd\[26122\]: Invalid user user from 138.68.171.25 port 39406 Jan 26 00:21:08 vmd17057 sshd\[26122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.171.25 Jan 26 00:21:09 vmd17057 sshd\[26122\]: Failed password for invalid user user from 138.68.171.25 port 39406 ssh2 ...	2020-01-26 07:29:07
80.241.222.246	attack	RDP Brute-Force (honeypot 4)	2020-01-26 07:46:49
139.59.90.40	attackspambots	Invalid user server from 139.59.90.40 port 43729	2020-01-26 07:28:36

Recently Reported IPs

80.153.206.33	60.249.15.218	45.143.207.30	13.234.214.47
200.54.27.25	1.55.219.223	94.54.174.142	190.52.192.130
113.180.106.102	34.148.50.84	88.218.16.14	148.249.2.169
161.24.71.157	73.155.93.224	191.226.136.30	86.199.239.69
38.230.229.195	141.157.251.132	128.117.96.26	139.218.94.92